22 matches found
CVE-2026-2540
The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay attacks. This attack requires sending two previously captured codes in a specific sequence. As a result, the system can be forced to accept previously used stale rolling codes and execute a command...
CVE-2026-2539
The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data frames. An attacker with a radio interception tool e.g., SDR can capture the random number and counters transmitted in cleartext, which is sensitive information required for authentication...
CVE-2026-2541
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...
CVE-2026-2540
The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay attacks. This attack requires sending two previously captured codes in a specific sequence. As a result, the system can be forced to accept previously used stale rolling codes and execute a command...
CVE-2026-2539
The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data frames. An attacker with a radio interception tool e.g., SDR can capture the random number and counters transmitted in cleartext, which is sensitive information required for authentication...
CVE-2026-2541
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...
CVE-2026-2541
CVE-2026-2541 affects the Micca KE700 system. The vulnerability arises from using a 6-bit portion of an identifier for authentication within rolling codes, yielding only 64 possible combinations. This low entropy enables brute-force attempts against one component of the rolling code, allowing an ...
CVE-2026-2541 Micca KE700 Brute-force vulnerability due to low entropy
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...
CVE-2026-2541 Micca KE700 Brute-force vulnerability due to low entropy
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...
CVE-2026-2540 Micca KE700 Acceptance of previously used rolling codes
The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay attacks. This attack requires sending two previously captured codes in a specific sequence. As a result, the system can be forced to accept previously used stale rolling codes and execute a command...
CVE-2026-2540 Micca KE700 Acceptance of previously used rolling codes
The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay attacks. This attack requires sending two previously captured codes in a specific sequence. As a result, the system can be forced to accept previously used stale rolling codes and execute a command...
CVE-2026-2540
The CVE-2026-2540 entry describes a flaw in the Micca KE700 system where flawed resynchronization logic allows replay of previously captured codes in a specific sequence. This enables the system to accept stale rolling codes, potentially executing a command and cloning the alarm key, which could ...
CVE-2026-2539
The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data frames. An attacker with a radio interception tool e.g., SDR can capture the random number and counters transmitted in cleartext, which is sensitive information required for authentication...
CVE-2026-2539 Micca KE700 Cleartext transmission of key fob ID
The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data frames. An attacker with a radio interception tool e.g., SDR can capture the random number and counters transmitted in cleartext, which is sensitive information required for authentication...
CVE-2026-2539
The CVE-2026-2539 affects the Micca KE700 car alarm system where the RF protocol transmits data frames in cleartext. The vulnerability arises because random numbers and counters used for authentication are captured via radio interception, enabling an attacker to obtain sensitive authentication-re...
EUVD-2026-5832
The RF communication protocol in the Micca KE700 car alarm system does not encrypt its data frames. An attacker with a radio interception tool e.g., SDR can capture the random number and counters transmitted in cleartext, which is sensitive information required for authentication...
Micca KE700 安全漏洞
The Micca KE700 is a source bookshelf speaker from the Micca company. The Micca KE700 has a security vulnerability, which stems from a flaw in the logic for resynchronization. This vulnerability could lead to replay attacks, allowing attackers to clone alarm keys and gain unauthorized access to...
Micca KE700 安全漏洞
The Micca KE700 is a source bookshelf speaker produced by the Micca company. The Micca KE700 has a security vulnerability. This vulnerability arises from the fact that authentication is performed using only 6-bit identifiers in the rolling code. The low entropy value in this code can lead to...
PT-2026-8236
The Micca KE700 system relies on a 6-bit portion of an identifier for authentication within rolling codes, providing only 64 possible combinations. This low entropy allows an attacker to perform a brute-force attack against one component of the rolling code. Successful exploitation simplify an...
PT-2026-8235
The Micca KE700 system contains flawed resynchronization logic and is vulnerable to replay attacks. This attack requires sending two previously captured codes in a specific sequence. As a result, the system can be forced to accept previously used stale rolling codes and execute a command...